This page contains a Flash digital edition of a book.
24 technology


Is business security underestimated?


Recent cyber-attacks have prompted government officials to meet to discuss escalating priority of protection from cyber-crime, writes Dominic Preist of Jelf


Last year saw one of the biggest security breaches in banking history when customers’ names, addresses, telephone numbers and email addresses were compromised, at the US bank JP Morgan Chase. Whilst the bank said no financial information had been stolen, it has highlighted the increase in such threats. Andrew Tyrie, chairman of the cross-party Treasury Committee, said that the incident shows how banks are at an almost constant risk of security breaches.


However, the banking industry isn’t the only one at risk. More recently Sony Pictures, Moonpig.com and Office have all been victims of cyber security breaches.


It’s not just the larger, corporate companies that have been targeted by cyber criminals. According to government research by security


company Palo Network, more businesses than ever are facing the threat of losing confidential information. The research revealed:


• 87% of firms employing up to 50 staff had experienced a cyber- security breach and the trend is on the increase


• The average cost of the worst breach for small companies was between £35,000 and £60,000


• Some attacks caused more than £1 million of damage


Protecting your business


Although the Government has been actively working with security specialists for several years to combat cybercrime, the urgency of the potential risks have been highlighted by these high-profile incidents.


The Government has advised that the best defence for businesses is to enhance protection and focus efforts on prevention, warding off attacks instead of trying to fix the damage inflicted by breaches they fall victim to.


Last year the Government introduced a cyber-security certification. An organisation that has measures in place to help defend themselves against common cyber threats can acquire the Cyber Essentials Certification. Free to use to advertise to their customers, the certification could increase a business’s reputation, providing a competitive selling point. In the hope that this will increase cyber security, the Government have also created a fund (of up to £5,000) for firms employing up to 50 people to improve their cyber security by bringing in outside expertise to help.


It might come as a surprise that according to TechUK, businesses are most likely to fall victim to cybercrime because employees have created weak passwords. It is recommended that staff education can protect a business from these cyber threats and dangers. Making employees understand that the


Demystifying cloud security


There is still a lot of concern over data security especially where the cloud is concerned. Are we right to still have such reservations? SIRE technology takes a closer look at three main points – Is the cloud secure? Where is the data? And is your password up to the job?


1 My data is more secure with me than in the cloud


Most cloud providers have more physical, environmental and logical security than most businesses. Having multiple feeds of networking and electrical power, uninterruptable power supplies (UPS) and generators will make sure the systems have a constant connection, power and air-conditioning to keep things cool. With 24- hour surveillance cameras and security patrols that secure the building, you will find that this is more physical security


www.businessmag.co.uk


than is provided for your whole office, let alone just your data.


Firewalls provide the security from unwanted cyber visitors and remote site replication and data backups will ensure data is always available.*


2 If my data is in the cloud it could be anywhere?


This is where your own due diligence comes into play, it’s time to ask questions. Transparency is key.


It is completely acceptable to see something before you buy it. Good cloud providers will advocate honesty and complete transparency. If you would like further reassurance then a trip to one of the data centres will answer all your questions and ease any worries that you may have. You can then be sure of the security measures in place as promised by your provider,


meet the data team and see how the whole system works. Looking back to point number one, this is where you will also be able to evaluate whether your data is safer with you or with a cloud services provider.


3 Surely access to the cloud is just a password away?


Apart from the cloud services provider and the data centres we can all do our own bit to help with security.


Recent research and password breaches show that the most common passwords:“123456”, “password”, “qwerty” and “letmein” are still in use. Even with the most secure back-end systems – a weak password will often enable an attacker to access your cloud. Not only are passwords tried online, but breaches of password databases allow an off-line brute-force and dictionary


applications and public networks they use could be used as access points by cyber criminals is of paramount importance.


Finally, it is also advised that businesses keep their cyber defences updated so they can effectively combat the new techniques cyber attackers use.


Jelf Insurance Brokers specialise in offering insurance solutions for your individual business needs. No matter the size of your business there is a cyber-package available to suit each company’s individual requirements. If you have any questions or would like to discuss the implications of cyber security further you can contact Dominic Preist.


Details: Dominic Preist 0118-9839800 dominic.preist@jelfgroup.com www.jelfgroup.com


Jelf Insurance Brokers is authorised and regulated by the financial conduct authority (FCA) not all products and services are regulated by the FCA.


attacks to be attempted where standard safeguards such as account lockouts don’t apply.


And yes when it comes to passwords length is important, make sure your password is at least eight characters and contains an assortment of symbols avoiding the obvious o substituted for a zero as dictionary attacks often include this rule. When in doubt write it down, and be sure to store in a safe place.


When it comes to security of your data the main points are to establish an honest and transparent relationship with your cloud provider, carry out your own checks and regularly refresh your passwords. These are just some of the things that will help with keeping your data secure.


Details: www.sire.co.uk


*Although it is best to check the SLA that the cloud provider offers.


THE BUSINESS MAGAZINE – THAMES VALLEY – APRIL 2015


Page 1  |  Page 2  |  Page 3  |  Page 4  |  Page 5  |  Page 6  |  Page 7  |  Page 8  |  Page 9  |  Page 10  |  Page 11  |  Page 12  |  Page 13  |  Page 14  |  Page 15  |  Page 16  |  Page 17  |  Page 18  |  Page 19  |  Page 20  |  Page 21  |  Page 22  |  Page 23  |  Page 24  |  Page 25  |  Page 26  |  Page 27  |  Page 28  |  Page 29  |  Page 30  |  Page 31  |  Page 32  |  Page 33  |  Page 34  |  Page 35  |  Page 36  |  Page 37  |  Page 38  |  Page 39  |  Page 40  |  Page 41  |  Page 42  |  Page 43  |  Page 44  |  Page 45  |  Page 46  |  Page 47  |  Page 48  |  Page 49  |  Page 50  |  Page 51  |  Page 52